79 matches found
EUVD-2020-11996
Malware in sbrugna...
EUVD-2020-2451
Malware in sbrugna...
EUVD-2020-11997
Malware in sbrugna...
EUVD-2025-10173
Malicious code in bioql PyPI...
EUVD-2025-10245
Malicious code in bioql PyPI...
CVE-2020-0996
An elevation of privilege vulnerability exists when the Windows Update Stack fails to properly handle objects in memory, aka 'Windows Update Stack Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0985...
CVE-2020-0985
An elevation of privilege vulnerability exists when the Windows Update Stack fails to properly handle objects in memory, aka 'Windows Update Stack Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0996...
CVE-2020-1110
An elevation of privilege vulnerability exists when the Windows Update Stack fails to properly handle objects in memory, aka 'Windows Update Stack Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1109...
About Elevation of Privilege – Windows Process Activation (CVE-2025-21204) vulnerability
About Elevation of Privilege - Windows Process Activation CVE-2025-21204 vulnerability. This vulnerability from the April Microsoft Patch Tuesday was not highlighted by VM vendors in their reviews. It affects the Windows Update Stack component and is related to improper link resolution before fil...
The vulnerability of the Windows Update Stack component of the Windows operating system, which allows a hacker to increase their privileges
The vulnerability of the Windows Update Stack component of the Windows operating system is related to an incorrect definition of the link before accessing the file. Exploiting this vulnerability can allow an attacker to increase their privileges...
CVE-2025-27475
Sensitive data storage in improperly locked memory in Windows Update Stack allows an authorized attacker to elevate privileges locally...
The vulnerability of the Windows Update Stack component of the Microsoft Windows operating system, which allows a hacker to increase their privileges
The vulnerability of the Windows Update Stack component of the Microsoft Windows operating system is related to the use of unsafe mechanisms for processing authentication data in the operating system’s memory. Exploiting this vulnerability can allow an attacker to increase their privileges...
CVE-2025-27475
Sensitive data storage in improperly locked memory in Windows Update Stack allows an authorized attacker to elevate privileges locally...
CVE-2025-27475
Sensitive data storage in improperly locked memory in Windows Update Stack allows an authorized attacker to elevate privileges locally...
CVE-2025-21204
Improper link resolution before file access 'link following' in Windows Update Stack allows an authorized attacker to elevate privileges locally...
CVE-2025-21204
Improper link resolution before file access 'link following' in Windows Update Stack allows an authorized attacker to elevate privileges locally...
CVE-2025-21204
CVE-2025-21204 affects Windows Update Stack with improper link resolution before file access, enabling local privilege elevation for an authenticated user. Public documentation confirms the vulnerability and that Microsoft released fixes as part of April 2025 updates; patches include OS updates t...
CVE-2025-27475
CVE-2025-27475 is a Windows Update Stack elevation-of-privilege vulnerability. Description: sensitive data stored in improperly locked memory within the Windows Update Stack can enable a locally authenticated attacker to escalate privileges. CVSS v3.1 metrics indicate LOCAL attack vector, HIGH im...
PT-2025-15482
Name of the Vulnerable Software and Affected Versions Windows Update Stack affected versions not specified Description The vulnerability is related to improper link resolution before file access in the Windows Update Stack, allowing an authorized attacker to elevate privileges locally. This issue...
Microsoft Windows Update Stack 后置链接漏洞
Microsoft Windows Update Stack is part of Microsoft Corporation USA for managing updates. A backlink vulnerability exists in Microsoft Windows Update Stack. An attacker could exploit the vulnerability to elevate privileges. The following products and editions are affected:Windows Server...